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(57) An electronic, document provided by a user is, 
certified using cryptographic functions to create a doc- ; 
ument fingerprint which is then cryptographically signed 
together with a time stamp. The document which was 
certified is archived for safe deposit, and later retrieval. ' 
The document fingerprint ; and time stamp are returned'; 
to the user as part of a document certificate /The docu- .. 
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; merit cert if icate.ean> bemused to verify the authenticity of 
>r. copies of the oriiginaf documehVartGi to establish the prior 
-existence of the document; The filename of each docu- 
rrient certificate cah include a portion of the document 
; . fingerprint. , associated .with an electronic document to 
.enable a very, efficient search of aset of document cer- 
tificates to identify possible matches between document 
.** certificates and the electronic document being verified. 
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Description ' ' ' ""'[l 

BACKGROUND OF INVENTION V 

[0001] ' the present invention relates generally to the 
certification and safe storage of eieetV^ic.di^Dments. 
More specificaliy/the present invention relates to the ap- 
plication bf^cryptographlc m certify and pre- 
serve electronic documents forpo L ssibife ^subsequent re- 
" trieval and for verifidati^of the contents df the ejectron- 
ic documents. ' '" ;C; ^ * ; ' s r ' 
[0002] Known ^systems an8 'serviced appiy 1 crypto- 
graphic methods to electronic'^ the 
contents of the electronic documents as unchanged and 
to establish a time of certif icW'ioh*. For ^xample, Surety 
Technologies provides a' service^ the user 
to remotely apply 'a crypio^prt.icfe^ doc- 
ument to produce a document' h^sfi' The user' then 
sends this documeht^ha'sh to f a" computer at Surety. 
Surety creates a supeVhasn from all ^documenf hashes 
- received within a given 'tinie intieii^ajiyme 1 st«^m : ps the 
hash, and retums'the tirrie'stam^and haish to the user. 
[0003] Another known seWice is'^ PGP (pretty 
good privacy) digital time stamping 1 service provided by 
f.T. Consultancy Limited. This service receives "electron- 
ic documents from users and then applies cryptographic 
methods to produce a uniqUe >eriar number, a time 
stamp and a cryptographic sigh^fure.. The service main- 
tains^ bg of the ciyptographic signature, its serial 
number and its : time stamp. A user can, for example, 
send ah electronic documented the service where the 
document is time stamped arid^'drwarded to an intended 
recipient whoVeceives thedc^umentand'its tirne stamp. 
The purpose of the service is to time stamp documents 
signed with PGP tecHholdgV. . "\ ; 
[0004] These known systems and ('serv fees .however, 
cannot both certify ianeiecVonic dodument and preserve 
a copy of the document for subsequent verification and/ 
or retrieval. i> : V- * v *" '■ " • 

SUMMARY OF : t HE INVENTION ; 

[0005] An electronic ^ document ^ prdyided by a user is 
processed (i.e., certified) using cryptographic functions 
to create a document fingerprint'which is.then sealed (i. 
e., cryptographically signed) with a time stamp jn a doc- 
ument certificate so that Trie document fingerprint and 
time stamp cannot be counterfeit. The original electronic 
document which was certified carrbe archived for safe 
deposit ari'd'Hter reirievail. The document certificate can 
be used with public cryptographic' software and an ap- 
propriate public key to verify the authenticity of copies 
_bf the originai eiectronic document and to est^blfs'h the 
p'ridr existence of the documents. 

[0006] An electronic document is certified and pre- 
served by applying a first' cryptographic hash function to 
the electronic document to produce a document finger- 
print. A second cryptdgraphic hash'function Is applied 



. ' to a document certificate, which'includes the,,dpcument 
V., . ^n9erP r ' nt ? a time stamp, and a serial number, to pro- 
^ ~du.ce. a document' certificate fingerprint, The. document 
certificate fingerprint is cryptographically signed to pro- 
dye© a 'digital signature. The electronic document is 
^ . stored and a copy of the document certificate Js sent to 

Vthe user. 1 . .. 

: \L vr [0p07J : The.filename of the document certificate can 
. J*/ric!ude at least a .portion of the document fingerprint 
^P^l n ?^ : WjNp. the document.certificate) concatenat- 
■ 1 u- s V a Portion of the tirne stamp. This .'filename 
. .'^ ^rucjuje ^can/enable an efficjenf. search', ol document 
j / %t p- certificates; which can be resident on a user's machine, 
Ci, 'tPrt'fJe ^ dTCum)ei^t" certif icate(s)| pssociated with a given 
electronic document. Ponsequently, a user can search 
t'iiirQS-. filfn^ps of the. document. certificates rather than 
i cn>®' r P9^^dM'.^ e authentication ; process can use the 
r document ^certm 

t ../tents match Xhe fingefprint of. the document being veri- 
!^ ; ;t' e ^ -VVhen more than one document certificate are as- 
sociated with an electronic document, the time stamp 
.a :p C ? m .R onen t 9^, tne document certificate filename indi- 
- ; 'cates.which of the document certificates is -the more rel- 
evant.. 

. BRIEF DESCRIPTION OF THE DRAWINGS 

[0008] FIG. i illustrates a system block diagram of a 
.communication system for. performing certification and 
30 safe storage of electronic documents, according, to an 
embodiment of the present invention. 
, JOPp;?].* FIG. ,2 illustrates a method by which the server 
certifies and archives electronic documents, according 
. m to r an .embod iment of, the present invention . 
35 , [0O1 p] . . FIG \ [I ust rat es a format. for the serial number, 
^ according tip an embodiment of the present invention. 
. jW03tl.l.-R{3'- i: f illustrates the ; process by which a user 
... r can authenticate the contents of a document certificate 
j .■.as.h^ S i nce the time of certification 

40 to ensure the time of certification for the electronic doc- 
ument associated with the document certificate, accord- 
ing to an embodiment of Jhe present Invention.. 
[001?] FIG. 5 shows ah output display indicating to the 
user the document certificates locally stored at the cli- 
4 % 'r. ent »;§ccprding to ap embodiment of the present inven- 
" tion.. ' , . "'. ( , ( ;r . H . .. , 

[0013] FIG. 6 illustrates a process by.which.a user can 
t , authenticate .the contents of the electronic-document as 
having been unchanged, according - to an embodiment 
50 i of the present invention. . r ... -. ^ . ; 

. [? 01 ^] ; F|G- 7 illustratesa process by which a user can 
. . r authenticate the contents of the electronic document as 
- haying been unchanged, according to another embodi- 
.... .ment pf the present. invention., . . 

ss' ^'^y " . . . . i l \ .... 

DETAILED PESCRIPTiON - 
[0015] FIG. 1 illustrates a system block diagram of a 
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communication system for performing certification and 
• safe storage of electronic documents, according to an 
embodiment of the present invention. Comm'unication 
neiwork TOO interconnects client 'computers 110, and 
server 120 connected to repository storage 130."' 
[ti016] Client'computer 1 10 comprises pfbcessbr 111, 
- computer readable memory 112; network port 113 for 
coupling to network 1 00, and a local stora^ej X4~ Proc- 
essor^ 11, computer-readable merhpry 11 2, 'network 

• port 11 3 and local storage 1 1 4 are interconnected' Mem- 
dry li2' can store' lis er v application instrU*cfipns ;for exe- 
cution by ptecessbri 1 1 to verify the content^ of ah elec- 
tronic document and to establish that it existed at some 
prior date (i.e affirm ihe ( time stamp in its associated 

• documerit'certifi^ s : torageWl4 cah ^storje' elec- 
tronic dc^ments arid document certificates^tne cpmbi- 
'nation of which can be used to Verify the'cbnients of an 
electronic docu merit and ' rts J as3ocjalfed 4 lime stamp in- 
cluded in the"c6rre%pohdiri9 do^ume'ht certificate. The 
memory 1 12' and Storage' facility fl4,aithpugh Whown 

"as separate elements; could take the : form of ^single 
device- '''' o 

[0017] Server T20'is a network node that comprises 
'processor 121; computer readable memory 122; repos- 
itory storage interface port 1 23 for coupling to repository 
storage 1 30; and network port 1 24 for coupling to com- 
munication network ' tboi -Processor 1Tlf memory 112, 
repository storage interface port 123 and network port 
124 are interconnected. ' *'"'" * " ' 

[001 8] Memory 1 22 stores service instructions adapt- 
ed to be executed by processor 121 to certify electronic 
documents received from the user at cNent ,1l0 : and to 
store the electronic documents ahdlheir corresponding 
document' certificates for possible later retrieval. The 
certification process allows a user to iater verify th0 : con- 
tents of an electronic document and it£ corresponding 
document certificate 1 (which : includes the.documenl fin- 
gerprint resulting from the certification process' ahdbata 
indicating the time : that 'certification was performed) as 
being unchanged. Another embodiment of server 1 20 is 
a server on a corporate 1 intranet that store's' proprietary 
electronic documents:'- 0,1 ' : ' - ' h f "" ! " 

[001 9] Repository storage 1 30 is accessiblejby^s^ rver 
120 and stdres'the elect rdhic documents certified by 
server 120 and possibly their corresponding document 
certificates. Rather than store the (document certificates, 
it may be convenient to retain and store the separate 
fields of data comprising the certificate in a separate da- 
tabase. The electronic documents and docu merit' certif- 
icates stored i ^repository storage 130 can be retrieved 
by server 120 and forwarded : to a user at'clierit'llO to 
replace lost or inadvertentlyxhariged electronic docu- 
ments and/or document certificates. As discUsle'cTmore 

v futly below, these 'electronic' doc urherits' and/of docu- 
ment certificates can Re used to verify the contents of. 
copies of the electronic document which were certified 
and to establish the time stamp-of certification.' This- ver- 
ification can be performed by either the user who origi- 



nated the document certification or any, other. party with 
a copy of this corresponding document certificate. 
[0020] FIG. 2 jllustrates a method by : which the server 
certifies and archives electronic documents; according 
. 5 to. an embodiment of the present invention.; At step 200, 
. server .120 receives an. electronic document from client 
. lib through commuh^ 100. The electron- 

f ic do^u'rpenjt^serit by the/cijeht can, be any type of binary 
; file' rep resent in g "a ny. type pi jnf ormat i on , s uch as vide o, 
io \ "audio, text, ( image, facsimile, rn uJtimedia or any combi- 
" nation of data,' in any appropriate format.. For example, 
the e(ectrpnjc d^ spreadsheet, or some 

. ;pth^ electronic document can 

, J '^ . be user at client 110 before 

7f ( peir\g sen\to serye.c 1.20.". x > . 

_ ' [0p21] [^Xf^^p.^yBf 120 applies a cryptographic 
hash.fur^ document to produce a 

r ~ dccument fip^ hash f unction 

, appfjed' |n .step' i? 1 0 can^e any type of cryptographic 
2d ', hash' function, which ..exhibits, the characteristics de- 
'scribed febrbvy bit strings; of arbitrary fi- 

nite reng)h jnto biV stririgs of fixed length. The output of 
{ " t suph a c.ry pfbg^pBlc... bash function is. sometimes re- 
ierred to as a\fingerprint.'...' , ; . : . . 
, [00^2J For exarnple, ,'a" cryptographic hash, function 
} . cah.be. selected hay ipg the. characteristics of collision 
resistance,, pre image resistance, : and/or. second-preim- 
age res ista ince. . Cpf I ision, jr.es istance . indicates that it is 
computationally infeasjble tb find any two inputs (e.g., 
30 ' any two. electronic docup^ents) which hash to the same 
: ; outpMt (Le.,.theVame ,Preimage resistance 

. indicates that for essentialiy.any' prespecified output, it 
' is\ cbmputationaljy infeasitple Jtp find any input | which 
^ ' hashes to that output. In .other wprds, where a fingerprint 
35 is"pre-specifiecl, , it is very : d^icult/(essentiaH impossi- 
ble) t tp determine, the bpntents.pfjthe electronic docu- 
ment which produced jhai^ingerprint. A fingerprint pro- 
' ' ' duced by a pryptqgraph^^^ class is 

considered irreversible. Finally, second-p re image re- 
40 sistance indicates that it is computationally infeasible to 
find any second input which has Jhe same ; output as any 
specified input. In other "words, where one electronic 
document, is specified, it is very, difficult (essentially im- 
possible) to find another electronic document' which pro- 
45 duces the same.fingerprint.. . . 

[0023] Manipulation defection. ppdes (MDCs) can be 
~ used, such as the MD5, bash ^ algorithm which produces 
" a 1"28 bit' (or 32 hex) length string.^US. Patent No. 
4,908,86 V: issued to 'BrachtLet al. on Jviarch,13, .1990, 
so' discloses the M 02 . and, MQ4, hash ajgor ; ithms ; and. is in- 
cbrpora'te'd by.reference. To varying cjegrees r these MD- 
' . Cs exhibit the characteristics of collision resistance, pre- 
" image resistance and/or segondrpreimage resistance. 
[0024] In alternative embpdinpents, a, combination of 
55 , cr yp to graphic functions . can be used: .For examp^ the 
; MD5hashalgorithm"can^^ 

' umerit arid the. Secure Hash Algorithm (SHA-1) can be 
. .applied separately, to .tire electronic ..document;, the fin- 
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gerprints or a portion' thereof from each fingerprint can ' 
be combined to produce a composite fingerprint. Such r " ' 
■ : * aschem'e allocs the best characteristics of one crypto-' : ' : 
" graphic hash f unction to becbmbined with the best char-" 1 ' * 
acteristics of another cryptographic" hash function. In" M s 
other words, the collision resistance" arid sbcdnd preim- " 
age resistance' Characteristics' of a collision' resistant 
' - hash function; such a's'the"MD5 'hasK algorithrh; can be . 
combined with the p re image res isfance arid the second r ][' \ 
" preirhage resistance cha facte ristics of a'bne-Way hash '"''jSk 
function, such as the SHA^t; h^ • ° : 

'" [0025]'"' At srtep ?r 220; s^ 
This : time stamp can be used-iri the 1 future 'to determine ; 1 ' : 
when the certification method/ generally described in : \ 
r ef e re nc e to ' F I G .' 2 , was a^piiecfto' tft e e lecif on ic doc u- " is 
merit received in step ^Op/lfofe^WS * 

- time stamp in step 22(3 can be^ertorm6d : just"' before or 
contemporaneous With' step ; 21 p/lfie v time' recorded " " 
should be some form of 'universal iirhe^subfi as Green- 
wich Mean Time (GMT). 'Th'e tir^e stkrnp has'a time res- *20- 
olution which indicafes r ttie smatfiest inWiVaj erf time by : r ~ 
which the time starrip is Incremented." ' ; : ' 
[0026] At step'230;a v dopume is created : : 
by s e rve r 1 20 u sin g t h e r doc um erit f iftgerpr i nf p rod uced 
in step 210, the tirhe stamp 1 'produced in step 220, and 25 
a serial number! PIG 3Tllustraies a format for the serial 
number, according to an embodiment of the present in- 
vention: The serial number can' include haSh 300, time 
stamp 310; sequence nbrinber 320 and service provider/ ' "" 
processor number 330 Hash 300 can be for example 30 
hexadecimal characters from the digital fingerprint pro- r : 
duced in step 2 10' or a "subset thereof. For example, ' 
hash 300 can' include eicjhl of the thirty-two hexadecimal v 

' characters of a cjocumeni f in^ produced by the 
MD5 hashing algoriVnm'ap in step 21 0: Alternative- !,; &' 
ly, hash 300 cart include as many' as Irtirty-two of the ! ' 
hexadecimal characters r from the document fingerprint 
produced by the'MDS- hash in g"a I go rim m applied in step 

216: ' " - : ' >: - • * - 

[0027] Time stamp 310 indicates the date arid time'at 40 
1 whidh the document was certified by server 120. The " 

- value of time sta'rrip 310^ r . 
record recorded 'ln step 220: time stamp 310 "can in- ' ,,f " 
elude, for exariipie"' the c \ear, : month; day, 'hour and " 

* minute. ' * : "" - ' : "■' 45 * 

[0028] 'Sequence number 320 is' a unique nUrhberse- 
rially ! c6uhtecl by a particular' server 120 for a" particular 
time interval': Where values of time stamp 1 310 indicate 

"the date and the* time to, for example,' the minute, se- 
quence number 320 should have a sufficient range so 
(number of digits) to serially count the maximum' dumber 
of electronic documents' which can be' certified per J ' 

' minute/' - - :: ' - ' ""* -v.- - : • '-• ^ : - Jlt ' x 

[0029] For example, cori'sider'the case where the min- 
imum timeneecled for processor" 12 ? 1 bf server 120 to $s 
certify an electronic document is about four microsec- 
onds. The maximum number of "electronic documents 
that can be certified in' a minute is about sixteen million : 



* and, consequently, sequence number 320 C should have 
at least six hexadecimal digits. ~'\ ' 
"[0030] Service provider/processor identifier iB30 is a 
'"unique 'string indicating a part icu la ^server 120 which 
' /distinguishes that server \ 20 from any N other server 120 
' possibly connected to communication network 100. 
^ Service provider/processor identifier 330, can include a 
h ' service provider indicator and a prpcessbr, indicator; a 
" portion' of service provide r7proces^,jdpntifieL330 can 
indicate a particular .service ^provider and another por- 
^]or\6\' identifier 330lcan in- 

" dicate the particular service provider's processor per- 
^fbrftiing'th in reference to FIG. 2. 

^t6t)3'1]^'jn'altemat cer- 
' tmcate^ad^ a' document name and 

'M^user-sp^iTied description^ The doc urnerit name can 
__ t be in a fprrriat Vequired by'the operating system of the 
^ cii^ electronic dbcumerit and/ 

j^offrpm^ ^yvhere'jt was sent' For example.,, a file created in 
Microsoft® DOS© or Windows® operating system can 
have the document nam "pee rdoc". The user-spec- 
ified description can be text created by the user as notes 
\ abqut the particular^ electronic document; the user can, 
for example, describe the electronic document to pro- 
vide a'Vemfnder about content for later use. 
[0032] At step 240, a cryptographic hash function is 
applied'to the .docum created in step 230 

to produce a document certificate fingerprint. The par- 
ticujar cryptographic hash function applied in step 240 
cari be the same as the cryptographic hash function ap- 
plied jn ! step 210 or a different cryptographic hash func- 
tion with similar chai racteristics. 

,[0033] At step 250, the document certificate finger- 
" : F>nnt ts i cryptographicaHy. signed to create a digital sig- 
A patufe- Tb.e cfyptpgraphic signing, of the document cer- 
iificate fingerprint can be performed by any known public 
Key encryption scheme'such as the RSA ; public key en- 
cryption scheme disclosed in .U.S . Patent 4,405,829 by 
Rivest, et a/, issued on September, 20, j 983 and which 
is incorporated herein by. reference. In.this case, server 
120 1 can. cryptographical.ly sign the document certificate 
fingerprint using a. private the digital sig- 

nature; subsequently,' a user at client .110 .can crypto- 
graphically verify the digital signature, using the. public 
key corresponding to the private key, 
[0034] At step 26.0, .the electronic document is stored 
in reposjtory storage 130. Alternatively, the electronic 
document and the document certificate can be, stored in 
reposjtory storage 130. ~ . ' , - , 

[003$] At step 270, the document certificate and its 
associated digital signature are.sentjrpm the server to 
the user at the cjient. The client can, store the. document 
certificate and th^ 

the^cbritents ofcop^ies^of the ^original. electronic docu- 
. ment as unchangec! an.d to establish a prior date of ex- 
istence via the Jime stamp in the document certificate. 
The user can distribute copies, of document certificates 
and their associated digital signatures to others. 
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[0036] .,,.,FIG. 4 illustrates the process by which a user , .applied to the document certificate to produce a first 
can authenticate the contents of a document, certificate [" ^ document cert ificate.fi ngerprint, The cryptographic hash 
. as having been unchanged since the time pf certification .... function applied in step, 410 is the same cryptographic 
to ensure thai' thia time of certification for 'the electronic hash function prevjpus^ de- 
document associated with the document certificate and s ^ scribed inje'terenee to step 240 of. FIG.,2. Toensurethat 
the document 'fingerprint contained therein arVauthen- . t tb^^ser^attempting to authenticate a. document cert if i- 
i\c, acco/ding to ah embodiment of the present inven-, ; , f ] pa%. u.ses .the jsame cryptographic hash function used 
" tiorr By'authehticating'the contents of the'dpeument cer- ^' ;t „ by .the server, when the certificate was created, the serv- 
' " tifiegje a§' being unchanged since the : time pfcertifica- 0 ^ . \ , ice, provider associated with the.server can distribute or 
v ' tionV a UseYcan, authenticate th e datVf ime "at .wh ich the^.. io make ayai fable application .spVware containing the spe- 
'^cprtesj?ondihg; 4 electronic Vdocy merit * was\, certified. By cif ic cryptographic hash funcfipn or.musi specify same, 
^authenticatihg the contents of the docMment certificate . ,[004:2^ in 
as b'eirifg unchanged 'since the time, of cer^fica^ion, the, ' . L r ^jstejp.40p is .cry^to^rap^ (i.e., 'read); to pro- 

user' also can ' iVj^ 

contained w'ithih^tH^ . is. Xftal^ jgn^} u're, ijah. be cryptographically verified using the 

queritiy authenticate ^ e.g., ,.,. ^ ^cp^rTiplemerpit of .tfie cryptographic signing (i.e., encryp- 

the discussion regarding .R'd; 6 bejow)?; /' r ~~ J ^ .^^ipo^u step 240 of Fig.,2. For ex- 

' ( [°6i37] • Note'that 'the - specrfi.e use i;' that submitted the \, '"^^mp\e f jv^i^ie server, .120. previously cryptographically 
electronic doc umenf to server 120 fb^certifiqaton can J.^^V I^sjgnecj the. ^ertffjeate;^ using. a private key ac- 

*' perform the m^^ ^id ; 'cord in g tojp _ pubj ic : ke 4 y -eroryption scheme (e.g., RSA), 

ers other than the specific user who "submitted the elec- " the user at pJ lent 110 cap cryptographically .verify (i.e., 
tronic docurnent f6r certification can ajso perform the ' read) the digital signature using the public- key corre- 
methpd described in FIG. 4. In either caseV the. specific spondingj tq.the. private key . previously used by .server 

user that submitted the electronic document to! server ' ' 120, Just as the service provider associated with the 
120 for Certification need not .be the user who originated .25 .server which created J he document certificate can dis- 
(i.e., created) the electronic doc u merit.' s . ."/" v . . tribute or ^specify the. cryptographic hash function used 

[0038] At step 400, the .user perform in g.thf certificate to create ^the \ fingerprints created during, certification, 

authentication obtains a copy of the document \ cert if i- . ^is'servi^ to, users the 

cate and the digital signature. . For example, the docu- ' r . .public key with r which. the, '.digital signature associated 
ment certificate and the digital signature can be ob- ,30 ' jwith tlpe document certificate can be read,, 
tained from storage 114 of client .110. In the case where f [0043} Atponditipnai step.430, the first document cer- 
the user authenticating' the contents of the' document _ t if icate 'fingerprint pr.6^uceol i in;Step.4X0 isxompared to 
certificate is the party who submitted the corresponding ' ^ the second document certificate fingerprint.derived from 
electronic document" tor* bert if icatiori, for example, the . tfie digital signature. associated .with the document cer- 

* document certificate' and the digital signature may still \ 35 tificate! If. the contents of both ; .dpcument certificate fin- 
be stored in storage 11 4 of client 110 after initially being . f . gerprints.are tf^e sam^e, Jhen the process proceeds to 
provided by serWr 120 to the user upon completion of / step 440 where the contents of the document .certificate 
certification: / * . ' , ; . • • . * . , arejnd^ 

[0039] FIG. 5 shows ah output display indicate to the > " cation (i.e./the contents of the document certificate are 
user the document certificates tocailly stored at the. cli- .40 authentic). ...... ; , - ... r 

; ent/ according to an embodi^ / [0044] . At : step. 430, '.if .the contents of. the. first docu- 

tion. The output display sViowri' in PlG. 5 indicates the ment certificate. fingerprjot propjuced |n step 4.10 are dif- 
time stamp, 'document : name/ description and^ serial 'f erent f rqm the ^ 

number associated with each document cert ificate. The m ' % in the document ^certificate,. then the. process proceeds 
user can view the list arid select a document certificate *s to step 450 where the contents of the document certifi- 
to be authenticated. / 1 ' ' t cate are indicated as not authentic (i.e., they. have been 

[0040] In alterriative embodimehts, the user authenti- . . changed since the time of certification). Where the con- 
caiing the contents of the document' certificate can be ( tents ..of the doc ument'eert ificate are not authenticated, 
someone otner than the specific user who original ly sub- 'the document certificate and its contents have no valid- 
mitted the corresponding electronic docume/it.fpr certi- so jty. ' . '" " . .. * .'^ 
fication. In this'case, the'user performing authentication "-' . [004i5] ' . FIG, 6 illustrates a process by which a, user can 
can receive a copy of the document certificate and the ^authenticate the contents pf a particular, eject ronic doc- 
digital signature f rom another ; party, such* as 'the specific " umeht as having been unchanged, according to an em- 
original submitting user. The auth'enficating user can re- _ bodiment of the present, invention. The process de- 
ceive" the document certificate^and digital signature by, .ss scribed in FIG. 6 is pre/nised on the assumptions that 
for example, electronic 'mail 1 (i.e. , e-mail) or by pprtable , "'the user at client 1 10 knows. a document certificate cor- 

• storage medium (e.g., a floppy disk)/ * ' 1. r responding to the pa rticu far ^electronic document exists, 
[0041] At step 4 TO, a cryptographic hash, function is , that the contents of the document certificate are authen- 
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tic (see, e'.g:, : the~discuss ion above regarding FIG. 4) and 
that the document certificate- is stored at client T1 0. Note 
that theprocess described in'FIG. 6 can be -performed 
■* by the ? user- who submitted the' electronic document for 
certification or by 'other users.' 5 r> • ..c^. 
[0046] At step 600, : the* user at client '110 obtains a 
copy of the electron ic- document and'th'e corresponding 
document certificate having fa "first document fingerprint. 
: • This can be perform ed irY a hum for of ways. 1 For exam- 
ple; the user may nave*reta'ined ah uhcHanged 'copy of 
the electronic document since ft was Submitted for cer- 
tification ahcVorthe u¥er al^ un- 
changed copy of the document -certificate siricVprovid- 
ed by server t20a*ihe' ; time of cWf ificatiohr 
[0047] Altematrvely/^dsercan request s'erver'120 to 
provide the user at client 1t0 a copy of the' electronic 
document and/or th¥ ! cbrresp6 r hding document 'certifi- 
cate; server '-1 20 can' retrieve 'the' ^licrronic 'document 
and/or the correspondirigldrc^ re- 
pository storage 130 arid [ forward 1 then to the usWat cli- 
ent 1 1 0. Presumably^ Server 1 2u : Will only forward an 
electronic ddcUrnerif -'aricVor "the : corrdsponcting docu- 
ment certificate to the user who originally submftted the 
electronic document for certification by server 1 20 or to 
another user authorized by the user who originally sub- 
mitted the document. This selective forwarding can be 
accomplished through the use of passwords, for exam- 
• pie, whereby server 120 identifies ; the' specific user re- 
questing forwarding. 9'- tF ~* 1 1 .''»•■»" " : 
[0048] In alternative embodiments, the user can re- 
ceive the electronic document, the corresponding doc- 
ument certificate arid its "associated digital signature by, 
for example, electronic mail (i.e. ^e-mail j or by portable 
storage mediurh (e.g. , ; a floppy disk). For example, a us- 
er who originally submitted the electronic document can 
forward the electronic- dccument, , the ' corresponding 
document certif ica'te^andits'associated digital signature 
to a second user. The second user can'use a locally res- 
ident copy of the ;user application instructions to sepa- 
rately authenticate "the 'cdritents of the electronic docu- 
ment. The second 5 user can-further distribute copies of 
the document, the document certificate and its associ- 
ated digital signature. ' f ; 5c : ' - 
i [0049] Before proceeding; thebser uses the method 
of FIG. 4 to establish^the autheriticity of the document 
certificate in hand. When the method of FIG. 4 indicates 
that the contents of the document certified are authen- 
! tic, the user continues with step 61 6. ' J ' 
[0050] At step 6i0,-a cryptographic hash function is 
applied to the copy of the electronic document to be au- 
thenticated to produce a second document fingerprint. 
The cryptographic ha^h function applied in step 610 is 
■the same cryptographic -rVash function 'previously ap- 
plied by server 1 1 20 and described H referehce to step 
210 of FIG. 2. 

[0051]' At conditional step' r 626? the first document fin- 
gerprint obtained in step 600 is compared to the second 
document fingerprint produced in step 610. If the first 



1 ' * - 'document fingerprint matches the sebood doc^uiTient fin- 
\ \ ;9 e rprint, then the process proceeds to step '63& where 
- the contents of the electronic document are'ind'icated as 
' ^ „' ^ vin .9 b ® en unchanged since certification (i.e.? the con- 
'tents 5 of the electronic doc i) merit are authentic), 
■ [0052] 1 ^however, the first d&ument fingerprint does 
\!/^'^^ t '^ l 9! 1 '* h 1 e second document fingerprint, 'then the 
!1 * 3 .P^ess proceeds to step 640 where' the contents of the 
1'". i . . ' e ??? t /°0 i ?\^y ^-P^^ ' in .dipiited asbeing changed (i. 
~ • 1 ?V r -" ^^^^" t "^^ t "^ t *^ electronic document. are hot au- 
theritic)' Because the process described in FIG 6 is 
... 1 Pl^!™^ d ! 9 n ^sumptibn' th at the user, at client 1 1 0 
"J ' ^ . ^^if ' document ^ certificate' for trie corresponding 
I - # ^^^t l&rtfe cif^ufrient ^ ^cist^ ^aricl is stored , at client 110, 
I ^^^ir^!" ^^P'r 0 ?. 0 ? .^00^ rprirtt;" wilf not match, the second 
- h : ■ f^ienpHnt only when the contents of the elec- 

1 '.^'IJ^i^i*?^^®^ n 'aye beeh._ changed, .(intentionally or 
f * ; -" ^hfnterttloriaHy)'; < c ,M ; : • 

~ l|^?A?i f ! F J^;7 jliOst rates a proce which a user can 
2& t authenticate the|TOhtents.bj the electronic document as 
having been unchanged, according to' anothe r embodi- 
ment of the present invention. The process described in 
reference to FIG. 7 is applicable where the user cannot 
! . . e ^ t ?^ , l^ n tn at the corresponding documenrcertificate is 
T ^^t ^drfcd in local storage'114 at trie client 110. Not 
<oniy" may the user be unable to establish that a corre- 
„ ^ponding dodumeni ^certificate.is locally stored, the user 
r ln ?^ n6t '^khbw '' whether Jhe electronic docurnent has 
'" been previously certified. ! 

i^jO054] ' l^an'ajterhative embodiment, document cer- 
^ " t't'P?^? ^an be maintained in a public or controlled ac- 
c ®??. d ^ b ^® : 9oprie6ted to communication network 
; 100V A user can create a document fingerprint and then 
- S ??^P ^ directory' of the public or controlled access 
3 -,. w ^?^a$e x ? ; fi pdV fingerprint. If a 

; • match is found, the user can thereby establish that the 
. < ^P me ^/ n *P e °M&' S possession is an authentic copy 
of some drigiriai which was previously certified on the 
date indicated by the document certificate. Depending 
40 on other iriformatibri : ^ with the doc- 

° "\ ^nifenY fingerprint di- 
rectory, the user can more about the document in 
~ the user's possession. 

" " lopS j5]' "At 'step 700, the user at client lib obtains a 
4 f _ cbpy of the electronic docurriem whose contents'are to 
w be authenticated. As just discussed, the user cannot yet 
establish whether the corresponding document certifi- 
cate is locally stored at client 110^ 
' . '. j? 0 ^, /^ t st6 P 7 1°»- a cryptographic hash function is 
so applied to the electronic document Jo produce a first 
document ^ fingerprint. The cryptographic hash'function 
. '?P^ , Lt^ ,n -'? t !?f > 7 \° t ne . same cryptographic hashf unc- 
{ tion preyidusly applied by server 120 and described in 
reference to step 210 of FIG 2 
ss [0057] At step 720, for. each document ^ lo- 
' r .„ cally resident ^ local storage 1 1 4 of client 1 f 0, the value 
' 'of the'hash cbmpone hash 300 in FIG. 3) of the 

% serial number for the document certificate is obtained. 
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Note that each document certificate includes -its own 
seconcj document fingerprint which can be compared to 
the first document fingerprint produced at step, 7.10. As 

_FIG. 5 illustrates for one embodiment, each document 
certificate filename comprises the document certificate 
serial^number beginning,, with eight hexadecimal digits 
which equal the .first eight hexadecimal digits pf the doc- 

' umeht fingerprint contained within the document certil- 
icate. In alternative embodiments, a greater or. fewer 

\\ number of digits of .the. document fingerprint can be used 
; iathe serial number and, consequently, .obtained at step 

.720. By inclucling in tjie'fi jename of each document cer- 
tificate some subset of ( the document, fingerprint con- 
tained in the document certificate, the filenames -of the 
resident document cert (pf which tfiere^may :be 

thousands) or a public or cp^troi^d-access dait^b^se of 
document certificates, (of which thQ re may be thou- 
sands) can be scanned simply ancf efficient JyVin search 
of a match with the ( fingerprint cpmputed fr^.the doc- 
ument to be .authen t icated. , Th is method! /qr nam in g t h e 
document certificates obvigite.s the. need to, op en. each 
document certificate file to check for the existence of a 
match. . . * '. _ J ". • 

[0058] At conditional step 730 : /the value pf ; . the .hash 
Component (e.g^ hash 3b0jn FI G. 3) of Jhe , serial number 
for the document certificate is compared to t^e, corre- 
sponding portion of the first documept^fingerprint pro- 
duced in step 710. For example, where the value of hash 
30d is the first eight hexadecimal digits of the document 
fingerprint previously produced by server 120. (see step 
210 of FIG. 2), the corresponding first eight hexadecimal 
digits of the document fin gerpnnt p roduced. Th step 710 
are compared, if no match results from cycling \hrough 
all document certificates \p the local, storage 114> or in 
some public orcontrolled : access clatabase.Jhe process 
proceeds to step 740jwhere;it is indicated that authen- 
ticity cannot be established. If the portions of the docu- 
ment fingerprints match, then the .process proceeds to 
conditiorial'step 75QT "\ . .... . 

[0059] Note that even though authenticity of t^ con- 
tents of the electronic document cannot be. established 
in step 740 of FJG T, the ' document may still! be an au- 
thentic copy of some original "Failing^ to establish au- 
thenticity simply indicates that the document certificate 
corresponding to that original/nay not be present ih the 
local storage, 1 14 or in any other database (s) r whjch were 
searched. ' \ ' " ' "' .. 

[0060] At conditional step 750, for each match! result- 
ing from conditional step 730, the corresponding second 
document fingerprint included \x\ the document'certifi- 
caje associated with the matched serial, number'is com- 
pared to the first document fingerprint produced in step 
710 In other wo rds each matched serial nu mb e r has a 
cor res pon di n g dec u/rVent ! c.e irtif icat e which in cj bdes th e 
full document fingerprint; at conditional step 750, .this 
full document fingerprint is compared to the^docurhent 
*" fingerprint p/pduced in"step.7l0. r^ote.that jor step 750 
to be valid, the authenticity of the contents. of the doc u- 



•j : r. . . ment. certificate should .have, been /-previously estab- 

. fished using the process of FIG. .4.. : , . . 
; ,,[0061^ . If the first dpcurnent. fingerprint does not match 
. J(V ,a/iy-of ,the.sepond document fingerpFints. fte.; the full 
5 document fingerprint associated with the matched serial 
^ Ti . 4 jj v ymber) ih tjien the process proceeds to step 740 where 
..... ^jy&Jn^ of the electronic docu- 

| (t r : M-.^ept,c^npt.be<shpvm to be authentic: .., - 
;t , r \_i6p62], -If the. first .document fingerprint matches the 
k J? v: .second document fingerprint (J. e.^Jhe full document fin- 
?0 ',,ge,rpript. ^s-sc^jated'^ with^. the ; matched serial number), 
^A^A^j?■P!^W;WP^^J.9 step 760, At step 760, the 
. t . , vo content^ : of .the 'eleqtrqnic-.document .are indicated as 
having lipeen unchanged since certification (i.e. ...the con- 
tents, of the electronic. document are authentic). 
, r , j[Qp63J : - It sficujld, of course, be understood that while 
;. i ( r i:u the : preset ipyentioa has been ^described in reference 
... ^^fr^P 1 9^jC-H^f-?y^$i r P Gcrifigurationsand processes, other 
... system, configura|ions :; an ; d processes.should.be appar- 
. ent to thq§aof r ofd.inary;skill in the art. For example, the 
, : pres^ntinvention can incjude any number of clients and 
. t , senders,, and be connected to a telecommunication net- 
, v O wor;k pr^cpmbination.pf networks. 

25 . . _ " K \ \ jj . . 

; ■ lL Clajm^... :/ , o; :.-...'...'_ c-. Y 'r-.-.-' . ■ - 

" t j • \t A method for certifying and preserving an electronic 

document, comprising: . - , 
30 : ■ - : i V' - : v.: ^ ^ ' ! -K.;: ' ■ * 

k : :> -( a ) a PP ,vin 9# firstcryptpgraphic^ hash function 
: :«'■ r : . .. Jo the electronic document tp produce a docu- 
,-!r.i" :* - ; : . ment. fingerprint;- . ... 

. : . .(bj^pplyinjg.a second cryptographic hash func- 
? 5 uv-rr :. .". .^9 n ; a document certificate which includes 
. .. . .. the doc/jment fingerprint,, a time stamp, and a 

. .. ■ se rial ,number : to : prod uc e : a doc u m e nt certifi- 
, .. ". .. ... cate fingerprint;.,.: . . 

- - G , ... (c) : orypt.ograRhically : s|gning the certificate fin- 
40 . gerprint to r . produce a digital signature; and 

, , . (d) storing the -electronic efpeument. . - 

2. The method of claim 1, wherein; .the ;seriaj number 
,. includes at . least, a portion .ot the document frnger- 
45 r print produced in step (a),, i - 

rGt 3. c r The method of claim 1,.-wh,erejn the.seriaf .number 
includes at feast a portion, of the. document finger- 
"i.v;.,, PHPt produced, in step f (a)}and :i the time stamp, 

.... 4... r The method of claim 1 c wherein the : senat. number 
. . . ..includes at I east, a port ion < of : the/document finger- 
. x j , phot, produced in- step. ( (a)»- the time,. stamp, and a 
sequence. number.., ■-, • 

55 ' 

r ■ 5. : The ^method; of plaiiji-1 ^ wherein the serial number 
. . . , . , is used.as a filename for-the document certificate. 



7 



13 



EP 0 940 945 A2 



14 



6. The method of claim : 1; wherein" the serial number 
includes at least a portion of the document finger- 
■print prbduced'ih step* (a); the time stamp having a 

- -time resolution,^ a- sequence number reset every 
time resolution and^a service' Identifier indicating a 
processor used by a service provider 
r .. i jo. r. • * *ji c - - r 

7. > The method of claim- l<r wherein:' ^ 

the first .cryptographic hash function" applied in 
step (a) is a collision resistant hash function, 
the i second cryptographic haishT u net ion : applied 
in step (b) is a collision resistant hash function, 
.•>• arid.- ■ ■ : " •irr^tiq-V' *G. 

— 'the cryptographic ^"sigriihg ! rh"s1"ep % (c)usesapub- 
«, i lie-key - Encryption .scheme^'including a private 

• ' - • ■ r key for cryptograpliic sigriihg and its associated 
public key for cryptographic verifying. 

8. - ' The method 6t c1aiifi"-1-^^eTein: '•' ; 1 ' 

the first cryptographic* hash' function 'applied in 
step (a) is a MD5 hash function, 
- the secondary ptcgraphictiasKv unction applied 
' in step (b) is a-MD5 hash function, and 
the' cryptographic - si : ghM§Mri v sfep : (c) U6es an 
RSA public-key encryption scheme including 
an RSA private key for cryptographic signing 
■' ' and its associated RSA" public "key for 'crypto- 
,; - ' . ' "graphic verify irig. : " ■■ '•" " : * 

'9- : The; method of Claim 1 , further comprising: 

(e) applying a third cryptographic hash function 
Mo the 'electronic document to produce a second 
■■■■■■ document firiger^nnt;- rj • ■ • 

*■ the seriaf humbeMncluding' at: least a portion 
of the first document fingerprint produced in step (a) 
and at least a portion of the second document fi'n- 
gerprint produced ih step* (e*). - • " 

10. The method of claim'' i2 furthercomprising: 

(e) applying a third cryptographic hash function 
■ - ; io the electronic document to produce a second 
- i: ' document fingerprint? the^ third -cryptographic 
: hash function being the SHA^T hash function; 

the serial number including at least a portion 
:c. > vof the first document fingerprint produced in step (a) 
and ai tea'st a'portlbh of the second document fin- 
gerprint produced in step (e). i , 

11: H"he method of -claim. 1v wherein the storing step (8) 
further includes- storing' "the document certificate 
and its associated digital signature. r " 



12. The method of claim 1 , further "comprising: 

■ ■ 1 ' (e) sending to the user thedociiment certificate 
- stored in said storing step (d) and the digital sig- 
: nature. r: *• 1 

13/ 'The method of claim 1 , further comprising: 



20 



(e) deleting the electronic document stored in 

.-• ro'vq- \-y • :• sai & storing step (d): * " : ' ' • ' > 

-Jt-i u. L? . »*. ■ *n- ■ . r. o ' i- f 'r 

to »'^t4J A'method for retrieving and authenticating an eiec- 

[ - (a) 6btairnng the electronic document, a docu- 
ment certificate associated witlrthe electronic 
document and having a first document finger- 
■ >v priht; : anda digital signature associated with the 
document certificate; ; '" : '* 
(b) applying a first cryptographic hash function 
-to the documeht certificate to produce a first 
document certificate fingerprint; 
' (cycryptographically verifying the digital signa- 
ture to produce' a second document certificate 
'fingerprint; %t - 5 " 5 
(d) indicating, when the- first document certifi- 
:) ' cate fingerprint matches the second document 
: : certificate fingerprint, that the first document 
• fingerprint and the certification time associated 
1 with the document certificate are authentic; 
\e) applying a second cryptographic hash func- 
tion io the electronic document to produce a 
second document fingerprint; and 

(f) indicating, when the first document finger- 
print matches the second document fingerprint, 
that the contents of the electronic document are 

'- authentic 

WJ The method of claim' 1 4, furtrier comprising: 

46" - 1 v-: : " ... " < ■ • 

(g) sending a request to a server for the elec- 
' - L 1 - u trbriic document and'the document certificate 

k\ . us 'associated with the 'electronic document. 

45 16. The method' of claim 14; wherein said indicating 
step (f) includes: 
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(i) comparing a hash value of a serial number 
included' iri a ! filename of the document certifi- 
cate wit ha corresponding portion of the second 
' ' document fingerprint; lJ 

'' (iij : comparing, when the hMsh value and the 
corresponding portion of the second document 
fingerpfinrcompared in stbp (f)(i) match, the 

" first document fingerprint bf the document cer- 
*tificate ! witK the second document fingerprint. 



17. The method of claim 14, wherein said indicating 
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.step (f) includes: 



:! 21:, ?: The method of. claim 14, further comprising; 



. (i) comparing the second document fingerprint 
with ; a plurality of filenames each filename cor- 
responding to one document certificate from a 
plurality of document certificates, each fiiena- 
.. . me including a r^ash value comppnentqf a se- 
rial number associated with its document cer- 
.... . ...tificate;.and 

(ii) comparing, when the hash. value component 
of at least one filename from the plurality of 
. filenames .matches a,corcespond|ng pprjion of 
the second r .dqcument fingerprin| compared in 
step (f)(i), the first document fingerprint of the 
, documept t c^rt.ificate.wit(7 ; the second document 
<>ei ' ., fingerprint..,^- , , ,^ n ", 

18. ,.The. > i^Qthpd,oflcl^jmi-1;A>i w ^ er ®j n ,^ aid indicating 
step (f) includes:^, : , ■ 

(i) comparing thp ; .spcond : document fingerprint 
with a plurality of filenames each filename cor- 
responding ,tp one document. certificate from a 
plurality of document certificates, each filena- 
me beginning with a portion. of; the first docu- 
ment fingerprint; and >( , .;: . . s -»> 

(ii) comparing, when trie hash value component 
of at least one filename .from >the plurality of 
filenames matches, a corresponding portion of 
the second document fingerprint compared- in 
step. (f)(ij,, the first, document fingerprint of the 
document certificate with the second document 
fingerprint.,, ; .,, ... .. .... - 0 , ...... .. 

19. The method of claim 14, wherein: 

the first cryptographic hash Junction applied in 
step (b) is a collision resistant hash function, 
. the second cryptographic hash .function applied 
in step (e) is a collision resistant hash function, 

and • 

the cryptographic verifying in. step (c) uses a 
public- key encryption scheme including a pri- 
vate key for cryptographic signing and its asso- 
ciated, pub lie key for cryptographic verifying, r 

20. The method of claim 14, wherein: 

. . ( ... , the first cryptographic flash function applied in 
. step (b) is a,MD5 hash function, - 

the second cryptographic hash function applied 
in step (e) is a MD5 hash function, and 
. . _.the cryptographic verifying in ,step (c) uses an 
. ... RSA public-key encryption scheme including 
. an RS.A p,r iy at e, ( key for ,c ry! ptog raphic signing 
^ ,^ . /and its associated JBSA public key for crypto- 
graphic verifying. 



.•: ~ 1 o : (g).applying a third cryptographic. hash function 
/ .£ ; . . jtfie electronic.dpcument/to produce a third 
: • document fingerprint; .'-.. «i - 

the serial number including at least a portion 
of the second ;dcx:ument; : fingerprint produced in 
step (e) and at least a portion of the third document 
: 1 9 ' v : -.. fingerprint produced in jstep <g):. : , 

■c 3? , : ; ; j??. c Jhe. me, thodpf : c (aim ; 1,4,. further, comprising: 



.no: 
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(g) applying a third cryptographic hash function 
i , :.- ■ j to tb.e t elec-trpnic;docurr)ent to produce a second 
::, p nr. Segment fingerprint, : the, third cryptographic 
,oi r: Lt hasr)Jungtipn ; being the SHA-1 hash function; 

y-r.y; si. tyr^c r-f <" - } <i 

the serial number including at least a portion 
of the second, id.ocument fingerprint produced in 
step (e) and at least a portion of the third document 
: i > : . fingerprint produced in step (g)..-; 

23. t The : methQd of pjaim-l^ wherein the electronic doc- 
■ ;> umentj the document pert if icate, and the digital sig- 
, nature obtained: in, sjep ; (a). are obtained from local 
i. r~ storage.. . * rv--, ,...>!- : : ■, * 

24.. The methewdof claim -14, wherein the electronic doc- 
ument, the document-certificate and.the digital sig- 
nature obtained in step (a) are obtained from a serv- 
ice provider,:, who. original ly .certified the electronic 
document, through a communication network. 

35 , 25. The. method of claim J 4, ( wherein the. electronic doc- 
ument, the document^certificate and the digital sig- 
nature obtained in step (a) are obtained from a re- 
rnote party through a corywriunication network' using 
. .electronic ;,mail 0 .y„ : no".:. 

26. The method of claim 14, wherein the electronic doc- 
ument, the document certificate and the digital sig- 
nature obtained in step, (a) arejpbtained from a re- 
mote party through portable medium. 

27. A jnethod j f or^ determining whether, an electronic 
..-^ .dqcument.is an authentic. copy ; based on a plurality 

. ofidocumentcertificate.s each having its own docu- 
ment fingerprint, comprising: 

!( r r .= : (a) applying a cryptographic: hash' function to 
t > • -,:the electronic dpcyment^to. produce a first doc- 
ument fingerprint; " t /v ? • 

(b) comparing the first document fingerprint to 
z- ■ . ; : r Ah e . dpc.u men t . f i n g e rp ri nt of : at least on e :doc u - 
: >! ; *e: ?. * ment c © rt 'Jicate from the plurality of document 

certificates; : and . j 

(c) indicating, when the first document finger- 
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28. 



print matches the document fingerprint of the 
at least one document certificate from the plu- : - 
rality of document certificates, that the electron- 
ic document is an authentic copy of the elec- 
tronic document associated with the at least 5 
one document certificate. 

The method of claim 27, wherein the plurality of doc- 
ument certificates are stored on a publicly accessi- 
ble database. 4 - io 



29. The method of claim 27, wherein the plurality of doc- 
ument certificates are stored on a limited access da- 
tabase. 

30. A method for determining whether a candidate elec- 
tronic document is an authenticate copy of an orig- 
inal electronic document using a document certifi- 
cate associated with the original electronic docu- 
ment, comprising: 

(a) obtaining the candidate electronic docu- 
ment, the document certificate associated with 
the candidate electronic document and having 
a first document fingerprint, and a digital signa- 
ture associated with the document certificate; 

(b) applying a first cryptographic hash function 
to the document certificate to produce a first 
document certificate fingerprint; 

(c) cryptographically verifying the digital signa- 
ture to produce a second document certificate 
fingerprint; 

(d) indicating, when the first document certifi- 
cate fingerprint matches the second document 
certificate fingerprint, that the first document 
fingerprint and the certification time associated 
with the document certificate are authentic; 

(e) applying a second cryptographic hash func- 
tion to the candidate electronic document to 
produce a second document fingerprint; and 

(f) indicating, when the first document finger- 
print matches the second document fingerprint 
contained within the document certificate, that 
the candidate electronic document is the au- 
thentic copy of the original electronic docu- 
ment. 



31. 



An apparatus for certifying and preserving an elec- 
tronic document, comprising: 

a processor; 

a first memory connected to said processor, 
said first memory storing the electronic docu- 
ment and storing a plurality of instructions 
adapted to be executed by said processor to: 

(a) apply a first cryptographic hash function 
to the electronic document to produce a 



15 



20 



25 



30 



35 



40 



45 



f ■ - • ■* » document fingerprint; 

(b) apply a 'second cryptographic hash 
function to a document certificate which in- 
cludes the document fingerprint, a time 
stamp, and a serial number to produce a 
document certificate fingerprint; 

(c) cryptographically sign the certificate fin- 
gerprint to produce a digital signature; and 

(d) store the electronic document in said 
memory. 

32. An apparatus for certifying and preserving an elec- 
tronic document, comprising: 

means for applying a first cryptographic hash 
function to the electronic document to produce 
a document fingerprint; 

means for applying a second cryptographic 
hash function to a document certificate which 
includes the document fingerprint, a time 
stamp, and a serial number to produce a doc- 
ument certificate fingerprint; 
means for cryptographically signing the certifi- 
cate fingerprint to produce a digital signature; 
and 

means for storing the electronic document. 
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An apparatus for certifying and preserving an elec- 
tronic document to enable a user to subsequently 
authenticate contents of and certification date of the 
electronic document, comprising: 

a processor; and 

a memory connected to said processor, said 
memory storing a plurality of instructions adapt- 
ed to be executed by said processor to: 

(a) obtain the electronic document, a doc- 
ument certificate associated with the elec- 
tronic document and having a first docu- 
ment fingerprint, and a digital signature as- 
sociated with the document certificate; 

(b) apply a first cryptographic hash function 
to the document certificate to produce a 
first document certificate fingerprint; 

(c) cryptographically verify the digital sig- 
nature to produce a second document cer- 
tificate fingerprint; and 

(d) indicate, when the first document certif- 
icate fingerprint matches the second doc- 
ument certificate fingerprint, that the first 
document fingerprint and the certification 
time associated with the document certifi- 
cate are authentic. 

(e) apply a second cryptographic hash 
function to the electronic document to pro- 
duce a second document fingerprint; 

(f) indicate, when the first document finger- 
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print matches the second document finger- •. >::■ r . =, ? - . - ' ; * 
print, that the ; contents of the electronic ; --. u < y.. :: . 
document are-authentic. 
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fig: ; 2 



\ I RECEIVE AN EIICTCONIC DOCUMENT FROM THE- 
CLIENT AT THE SERVER ' 3 j ! 



APPLY A'GRIpTOGRAPHIC: HASH FUNCTION TO ; 

the electronic document to '.produce a 
Document fingerprint 

_ i t 



RECORD A TIME STAMP :' j 



CREATE A DOCUMENT CERTIFICATE USING" THE 
DOCUMENT FINGERPRINT, THE TIME STAMP, AND 
A SERIAL NUMBER": 't. 



APPLY A CRYPTOGRAPHIC HASH FUNCTION TO 
THE DOCUMENT CERTIFICATE TO PRODUCE A 
DOCUMENT CERTIFICATE FINGERPRINT 



CRYPTOGRAPHICALLY SIGN THE DOCUMENT 
CERTIFICATE FINGERPRINT TO CREATE A 
'DIGITAL-SIGNATURE \ 



STORE THE ElfCTROtoC DOCUMENT SlN "£ \ 
REPOSITORY STORAGE i j \ '■] \ 

SEND THE DOCUMENT CERTIFICATE AND DIGITAL 
j SIGNATURE" FROM THE SERVER TO THE CLIENT : 

! I , .„ . . . 
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OBTAIN AT THE CLIENT A COPY OF TIC 

DOCUMENT CERTIFICATE AND. DIGITAL 
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- 1 I I : ^ " 



APPLYxA CRYPTOGRAPHIC • HASH FUNCTION 

3 TO 'THE DOCUMENT CERTIFICATE TO 
PRODUCE Ar FIRST DOCUMENT CERTIFICATE 
tl{ FINGERPRINT ^ V • • 



42Q- 



CRYPT0GRAPHICAL1Y VERIFY THE DIGITAL 
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DOCUMENT CERTIFICATE FINGERPRINT ' 




DOES: THE FIRST DOCUMENT- \ 
CERTIFICATE FINGERPRINT 'MATCH \YES 
! THE SECOND DOCUMENT 
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